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DETAILED ACTION 

Response to Arguments 

1. Applicant's arguments filed 12/17/2004 have been fully considered but they are not 
persuasive. 

With regard to claims 1-7, 29-35, and 57-63, Lineham does teach a personal key, (control 
key) encrypting a file encryption key, (Fig 8, Col 8 lines 57-65). 
Lineham fails to teach a key generation method, only that the key is indeed generated. 
Ote merely provides for a key generation method that is also beneficial, because it 
provides easy association in the users memory with keys, (Ote Col 2 lines 65-68 to Col 3 
lines 1-4). Also, it is well known in the art to generate keys using pass phrases, 
(Schneier Pg 174). Lineham and Ote are of an analogous art, and both provide for 
authentication via a submitted pass phrase. 

With regards to claims 1 1-17, 39-45, and 67-73, 

Lineham teaches including a message authentication code in the header associated with a 
file, (Col 10 lines 13-18). It is the definition of a MAC that it is generated with a key, 
(Schneier Pg 3 1). Lineham does not explicitly state this. However, Lewis explicitly 
states the generation, and authentication of the MAC where it is only briefly mentioned in 
Lineham. It would have been obvious to combine the MAC of Lewis with the MAC of 
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Lineham, Lewis is merely teaching more explicitly what Lineham already contains. To 
authenticate the MAC the key must be sent with it, and to prevent a security breach it 
would have been obvious to encrypt. 

With regards to claims 18-20, 46-48 and 74-76, 

Davis teaches encrypting a "message" using public key cryptography, (Col 2 lines 3-10). 
The file encryption key is part of the message. Davis teaches the advantage of using 
public key cryptography, but it is well known in the art to use symmetric, or asymmetric 
cryptography interchangeably. 

Applicant's arguments see with respect to claims 8-10, 36-38 and 64-66 have been folly 
considered and are persuasive. The rejection of claims 8-10, 36-38, and 64-66 has been 
withdrawn. 

Claims 8-10, 36-38, and 64-66 are objected to due to their dependence on rejected 
independent claims. 



For rejection of all other claims, please refer to the previous office action, as cited below: 
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Claim Rejections - 35 USC §103 
2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-7, 29-35, and 57-63are rejected under 35 U.S.C 103(a) as being 
unpatentable over Lineham US 5,495,533 in view of Ote US 6,023,506. 

As per claims 1, 2, 29, 30, 58, and 59, Lineham teaches a file encryption system that 
encrypts a file encryption key with a personal key (control key), (Col 8 lines 57-65). 
Lineham teaches storing the file encryption key in a header and associating that header 
with the encrypted file, (Col 8 lines 50-60). Lineham teaches a file server to store 
encrypted files, (Col 6 lines 53-55). Lineham fails to teach the personal key is generated 
from a pass phrase. 

Ote teaches that a key may be generated using a pass phrase (password), (Col 4 lines 35- 

39, Col 5 lines 8-13). It would have been obvious to one of ordinary skill in the art to use 

the key generated by a pass phrase from Ote to the file encryption system of Lineham 

because a pass phrase is easy to remember and allows the user to avoid management of 

encryption keys, (Ote Col 2 lines 65-68 to Col 3 lines 1-4). 

As per claims 3,31, and 59, Lineham teaches that the personal key (control key) is 

changed periodically and re-encrypts file encryption keys, (Col 9 lines 3-10). 

As per claims 4, 32, and 60, Lineham teaches a file server to store encrypted files, (Col 6 

lines 53-55). 
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As per claims 5, 33, and 61 It is inherent that for multiple files, multiple keys will be used 
for encryption, and multiple headers will be created. 

As per claims 6, 34, and 62 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 

As per claims 7, 35, and 63, Lineham teaches a file decryption by utilizing a key to 
decrypt the key encryption key in the header, and using said key encryption key to 
decrypt said file, (Col 9 lines 55-59). Lineham fails to teach the personal key is 
generated from a pass phrase. 

Ote teaches that a key may be generated using a pass phrase (password), (Col 4 lines 35- 
39, Col 5 lines 8-13). 



Claims 11-17, 39-45, and 67-73 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Lineham US 5,495,533 in view of Ote US 6,023,506 in view of 
Lewis US 5,734,819 

As per claim 1 1, 13, 39, 41, 67, and 69 Lineham teaches including a message 
authentication code in the header associated with a file, (Col 10 lines 13-18). Lineham 
fails to teach a key to create the message authentication code. 

Lewis teaches that a key is to be used in operation of the message authentication code. 
Lewis teaches the key is to be kept secret. It would be inherent to encrypt the key for 
transit with the message authentication code thus keeping it safe, (Col 2 lines 20-46). It 
would have been obvious to one of ordinary skill in the art to include the key of Lewis 
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with the system of lineham because the key increases the security of the message 
authentication code. 

As per claims 12, 40, and 68 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 

As per claims 14, 42, 70, Lineham teaches hashing to create a verification value (header 
message authentication code), (Col 8 lines 62-65). Lineham teaches the message 
authentication code is encrypted with the personal key (Col 8 lines 62-65). Lineham fails 
to teach a key to create the message authentication code. 

Lewis teaches that a key is to be used in operation of the message authentication code. 
Lewis teaches the key is to be kept secret. It would be inherent to encrypt the key for 
transit with the message authentication code thus keeping it safe, (Col 2 lines 20-46). It 
would have been obvious to one of ordinary skill in the art to include the key of Lewis 
with the system of line ham because the key increases the security of the message 
authentication code. 

As per claims 15, 43, and 71 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 

As per claims 16, 44, and 72 Lineham teaches validating the header message 
authentication code in the process of file decryption, (Col 9 lines 47-50). Although not 
explicitly stated, it is inherent that another mac would have to be created by hashing the 
header including the keys, and comparing to the original mac. 
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As per claims 17, 45, and 73 Lineham teaches a message authentication code for the 
encrypted file, (Col 10 lines 13-21). Although not explicitly stated, it is inherent that 
another mac would have to be created by hashing the file and comparing to the original 
mac. 

Lewis explicitly teaches the mac authentication process, (Col 2 lines 34-47). 



Claims 18-20, 46-48, and 74-76 are rejected under 35 U.S.C 103(a) as being 
unpatentable over Lineham US 5,495,533 in view of Ote US 6,023,506 in view of 
Davis US 5,805,712 

As per claims 18, 20, 46, 48, 74, 76 the prior Lineham-Ote combination teaches an 
encryption system with a personal symmetric key, and a header. The combination does 
not teach public key cryptography. 

Davis teaches encryption and decryption through the use of a key pair, (Col 2 lines 3-6). 
Davis teaches a public key encrypts, while a private key decrypts, (Col 2 lines 5-10). 
It would have been obvious to one of ordinary skill in the art to replace the personal 
symmetric key system of the Lineham-Ote combination with the public key system of 
Davis because the public key system alleviates key management associated with 
symmetric key cryptography, (Davis Col 2 lines 10-13). 

As per claims 19, 47, and 75 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 
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Claims 21-28, 49-56, and 77-84 are rejected under 35 U.S.C 103(a) as being 
unpatentable over Lineham US 5,495,533 in view of Ote US 6,023,506 in view of 
Davis US 5,805,712 in view of Lewis US 5,734,819 

As per claims 21, 24, 49, 52, 77, and 80, As previously stated in this office action, the 
Lineham-Ote combination teaches an encryption system that encrypts a file encryption 
key, includes it in the header, and also includes a message authentication code, (Col 8 
lines 56-65, Col 10 lines 13-20). 

Lewis teaches that a key is to be used in operation of the message authentication code. 
Lewis teaches the key is to be kept secret. It would be inherent to encrypt the key for 
transit with the message authentication code thus keeping it safe, (Col 2 lines 20-46). It 
would have been obvious to one of ordinary skill in the art to include the key of Lewis 
with the system of line ham because the key increases the security of the message 
authentication code. 

Davis teaches encryption and decryption through the use of a key pair, (Col 2 lines 3-6). 
Davis teaches a public key encrypts, while a private key decrypts, (Col 2 lines 5-10). 
It would have been obvious to one of ordinary skill in the art to replace the personal 
symmetric key system of the Lineham-Ote combination with the public key system of 
Davis because the public key system alleviates key management associated with 
symmetric key cryptography, (Davis Col 2 lines 10-13). 
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As per claims 22, 50, and 78 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 

As per claims 23, 27, 51, 55, 79, and 83, Lineham teaches hashing to create a verification 
value (header message authentication code), (Col 8 lines 62-65). Lineham teaches the 
message authentication code is encrypted with the personal key (Col 8 lines 62-65). 
Lineham teaches validating the header message authentication code in the process of file 
decryption, (Col 9 lines 47-50). Although not explicitly stated, it is inherent that another 
mac would have to be created by hashing the header including the keys, and comparing to 
the original mac. 

Lineham fails to teach a key to create the message authentication code, 
Lewis teaches that a key is to be used in operation of the message authentication code. 
Lewis teaches the key is to be kept secret. It would be inherent to encrypt the key for 
transit with the message authentication code thus keeping it safe, (Col 2 lines 20-46). It 
would have been obvious to one of ordinary skill in the art to include the key of Lewis 
with the system of line ham because the key increases the security of the message 
authentication code. 

Davis teaches encryption and decryption through the use of a key pair, (Col 2 lines 3-6). 
Davis teaches a public key encrypts, while a private key decrypts, (Col 2 lines 5-10). 
It would have been obvious to one of ordinary skill in the art to replace the personal 
symmetric key system of the Lineham-Ote combination with the public key system of 
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Davis because the public key system alleviates key management associated with 
symmetric key cryptography, (Davis Col 2 lines 10-13). 

As per claims 25, 53, 81, Lineham teaches hashing to create a verification value (header 
message authentication code), (Col 8 lines 62-65). Lineham teaches the message 
authentication code is encrypted with the personal key (Col 8 lines 62-65). Lineham fails 
to teach a key to create the message authentication code. Lineham does not disclose 
public key cryptography. 

Lewis teaches that a key is to be used in operation of the message authentication code. 
Lewis teaches the key is to be kept secret. It would be inherent to encrypt the key for 
transit with the message authentication code thus keeping it safe, (Col 2 lines 20-46). It 
would have been obvious to one of ordinary skill in the art to include the key of Lewis 
with the system of line ham because the key increases the security of the message 
authentication code. 

Davis teaches encryption and decryption through the use of a key pair, (Col 2 lines 3-6). 
Davis teaches a public key encrypts, while a private key decrypts, (Col 2 lines 5-10). 
It would have been obvious to one of ordinary skill in the art to replace the personal 
symmetric key system of the Lineham-Ote combination with the public key system of 
Davis because the public key system alleviates key management associated with 
symmetric key cryptography, (Davis Col 2 lines 10-13). 
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As per claims 26, 54, and 82 Lineham teaches a file server to store encrypted files, (Col 6 
lines 53-55). 

As per claims 28, 56, and 84, Lineham teaches a message authentication code for the 
encrypted file, (Col 10 lines 13-21). Although not explicitly stated, it is inherent that 
another mac would have to be created by hashing the file and comparing to the original 
mac. 

Lewis explicitly teaches the mac authentication process, (Col 2 lines 34-47). 

Conclusion 

3. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of the 
advisory action. In no event, however, will the statutory period for reply expire later than 
SIX MONTHS from the mailing date of this final action. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christopher J. Brown whose telephone number is 
(571)272-3833. The examiner can normally be reached on 8:30-6:00. 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory Morse can be reached on (571)272-3838. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 
Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). 



Christopher Brown 




4/17/05 




Gregory morse 
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